$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065577241947209729/0/3132302e34352e39362e302f32302d3230203d3e2034383437.roa File: 3132302e34352e39362e302f32302d3230203d3e2034383437.roa (raw, json) Hash identifier: Cwk4Alhnn9vWh4Wap4YmBvFReJ4SJAPiCfZlQmVNmsA= Subject key identifier: A4:35:75:87:9C:E6:CC:A6:26:BD:0A:D4:48:B2:0E:E2:C1:DE:73:51 Certificate issuer: /CN=6B57EAD7B38319269AE93A3E26FB3967D141F5D5 Certificate serial: 0CABE493F88DC13A95E03389FDCFD05347D7C0AE Authority key identifier: 6B:57:EA:D7:B3:83:19:26:9A:E9:3A:3E:26:FB:39:67:D1:41:F5:D5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6B57EAD7B38319269AE93A3E26FB3967D141F5D5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065577241947209729/0/3132302e34352e39362e302f32302d3230203d3e2034383437.roa Signing time: Fri 05 Jun 2026 06:23:49 +0000 ROA not before: Fri 05 Jun 2026 06:18:49 +0000 ROA not after: Fri 04 Jun 2027 06:23:49 +0000 asID: 4847 IP address blocks: 120.45.96.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065577241947209729/0/6B57EAD7B38319269AE93A3E26FB3967D141F5D5.crl rsync://rpki-rps.cnnic.cn/repo/A1065577241947209729/0/6B57EAD7B38319269AE93A3E26FB3967D141F5D5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6B57EAD7B38319269AE93A3E26FB3967D141F5D5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 12:15:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:ab:e4:93:f8:8d:c1:3a:95:e0:33:89:fd:cf:d0:53:47:d7:c0:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B57EAD7B38319269AE93A3E26FB3967D141F5D5 Validity Not Before: Jun 5 06:18:49 2026 GMT Not After : Jun 4 06:23:49 2027 GMT Subject: CN=A43575879CE6CCA626BD0AD448B20EE2C1DE7351 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:4a:1d:16:1d:2b:41:e8:68:47:13:f0:fa:45: ac:4f:83:15:78:96:78:42:39:98:da:48:2d:11:9d: a0:3d:49:4e:ed:7f:43:91:f8:58:77:88:96:b6:70: 9c:5a:e8:80:59:f7:e8:f8:b3:3c:95:ea:d0:27:35: 2d:a0:b8:da:7b:9b:50:12:87:e5:7a:70:97:da:dd: 29:dc:bc:63:81:91:6e:9c:a2:e1:4b:bd:b3:d1:74: 16:59:85:dc:d2:8c:09:42:13:11:30:4b:28:5a:75: 98:f3:9a:98:64:46:46:71:f3:ef:e5:a0:67:5e:ef: 62:32:d3:5a:d2:e3:3c:ca:7c:f9:2f:08:77:aa:c3: 5f:c9:01:4a:dc:3d:ca:0c:46:f6:e1:4a:98:22:23: fe:8f:10:dc:4c:13:7f:14:74:0b:c2:90:20:41:46: 71:3a:35:72:c2:6c:9e:83:55:67:70:fe:8e:a4:5e: 9d:bc:be:ed:21:01:a6:61:e9:96:c3:95:52:95:a6: 80:b9:1d:f8:95:d8:65:1c:a0:f9:70:1b:f4:cc:52: 14:3d:6e:e9:6f:03:79:49:df:96:01:e0:09:eb:4d: 0a:52:fb:46:9f:59:d0:c7:09:70:11:21:bd:45:e6: 3c:cc:c0:96:f7:64:89:1c:b0:5b:ae:dc:48:4a:62: 5e:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:35:75:87:9C:E6:CC:A6:26:BD:0A:D4:48:B2:0E:E2:C1:DE:73:51 X509v3 Authority Key Identifier: keyid:6B:57:EA:D7:B3:83:19:26:9A:E9:3A:3E:26:FB:39:67:D1:41:F5:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947209729/0/6B57EAD7B38319269AE93A3E26FB3967D141F5D5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6B57EAD7B38319269AE93A3E26FB3967D141F5D5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947209729/0/3132302e34352e39362e302f32302d3230203d3e2034383437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.45.96.0/20 Signature Algorithm: sha256WithRSAEncryption 1f:20:75:28:ac:c1:4b:06:75:a1:b8:8b:08:72:c4:9e:8f:cb: 32:6b:19:82:33:b1:dd:09:85:e0:65:3f:59:27:ac:f6:94:31: eb:66:97:76:e3:c9:b2:de:4a:b0:63:41:ce:2a:53:70:1b:6a: 87:cf:9b:b2:7b:5f:22:54:6c:ac:80:c2:d9:db:3f:e9:ab:c4: df:b2:36:c4:58:7a:3e:1f:52:af:78:49:21:09:5b:fc:4a:d2: 6c:b2:92:a6:1c:1f:bc:3a:a1:a1:ed:22:a5:03:6f:c9:9d:61: 57:0c:89:3b:72:54:95:c9:b2:96:fb:12:7d:1e:0a:2b:b4:9b: 6a:21:40:7c:a8:b5:e8:e2:d8:90:e1:a7:a5:88:dd:57:b6:6b: 21:52:fd:97:46:5d:f2:c1:ee:6b:9f:0a:7b:58:3c:12:f4:c1: c9:a8:cb:a2:7d:28:38:03:94:20:68:4a:c2:a9:0a:29:61:0f: 20:9c:4f:27:81:2b:83:50:5b:e9:4d:8d:f2:20:f9:a6:52:30: 4e:c4:12:2f:61:19:7f:79:e6:18:8f:53:30:e1:22:3d:07:80: 93:02:6b:8a:89:e8:61:ef:68:f8:7e:29:ab:fd:a6:89:af:af: 11:82:c4:ea:dc:4b:66:c4:4e:da:a8:6d:fd:c9:0d:5f:27:b6: 4f:c2:6d:30 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUDKvkk/iNwTqV4DOJ/c/QU0fXwK4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkI1N0VBRDdCMzgzMTkyNjlBRTkzQTNFMjZGQjM5NjdE MTQxRjVENTAeFw0yNjA2MDUwNjE4NDlaFw0yNzA2MDQwNjIzNDlaMDMxMTAvBgNV BAMTKEE0MzU3NTg3OUNFNkNDQTYyNkJEMEFENDQ4QjIwRUUyQzFERTczNTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkSh0WHStB6GhHE/D6RaxPgxV4 lnhCOZjaSC0RnaA9SU7tf0OR+Fh3iJa2cJxa6IBZ9+j4szyV6tAnNS2guNp7m1AS h+V6cJfa3SncvGOBkW6couFLvbPRdBZZhdzSjAlCExEwSyhadZjzmphkRkZx8+/l oGde72Iy01rS4zzKfPkvCHeqw1/JAUrcPcoMRvbhSpgiI/6PENxME38UdAvCkCBB RnE6NXLCbJ6DVWdw/o6kXp28vu0hAaZh6ZbDlVKVpoC5HfiV2GUcoPlwG/TMUhQ9 bulvA3lJ35YB4AnrTQpS+0afWdDHCXARIb1F5jzMwJb3ZIkcsFuu3EhKYl4VAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUpDV1h5zmzKYmvQrUSLIO4sHec1EwHwYDVR0j BBgwFoAUa1fq17ODGSaa6To+Jvs5Z9FB9dUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NzI0MTk0NzIwOTcyOS8wLzZCNTdFQUQ3QjM4MzE5MjY5QUU5M0EzRTI2RkIz OTY3RDE0MUY1RDUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNkI1N0VBRDdCMzgzMTkyNjlBRTkzQTNFMjZGQjM5NjdEMTQxRjVENS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc3MjQxOTQ3MjA5NzI5LzAvMzEzMjMwMmUzNDM1 MmUzOTM2MmUzMDJmMzIzMDJkMzIzMDIwM2QzZTIwMzQzODM0Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAR4LWAwDQYJKoZIhvcNAQELBQADggEBAB8gdSiswUsGdaG4iwhyxJ6PyzJrGYIz sd0JheBlP1knrPaUMetml3bjybLeSrBjQc4qU3AbaofPm7J7XyJUbKyAwtnbP+mr xN+yNsRYej4fUq94SSEJW/xK0myykqYcH7w6oaHtIqUDb8mdYVcMiTtyVJXJspb7 En0eCiu0m2ohQHyoteji2JDhp6WI3Ve2ayFS/ZdGXfLB7mufCntYPBL0wcmoy6J9 KDgDlCBoSsKpCilhDyCcTyeBK4NQW+lNjfIg+aZSME7EEi9hGX955hiPUzDhIj0H gJMCa4qJ6GHvaPh+Kav9pomvrxGCxOrcS2bETtqobf3JDV8ntk/CbTA= -----END CERTIFICATE-----Generated at Fri Jun 12 02:23:40 2026 by rpki-client